Professional Documents
Culture Documents
Introduction
Contents
System Specification
Index
04/2007
A5E01100600-01
Safety-Related Notices
Notices that you should observe to ensure your own personal safety and to avoid damage to property
and equipment can be found in the relevant technical manuals. The safety of pharmaceutical products
of prime importance to the pharmacist must be evaluated by the pharmaceutical company itself. This
document provides information on this topic.
Qualified Personnel
Only qualified personnel should be allowed to install and work on this equipment. Qualified persons
are defined as persons who are authorized to commission, to ground, and to tag circuits, equipment,
and systems in accordance with established safety practices and standards.
Siemens AG
Automation and Drives
Postfach 4848
90437 NRNBERG
GERMANY
A5E01100600-01
04/2007
Introduction
Scope of this manual
This manual describes what is required of the system, the software and the procedures
for configuring SIMATIC STEP 7 from a Good Manufacturing Practice (GMP) perspective.
The relationship between the requirements and implementation is explained based on
practical examples.
Intended Audience
The manual is intended for all plant operators, persons responsible for branch-specific
control system concepts, project leaders and programmers and maintenance or service
personnel who use control systems in a GMP environment. It describes approaches for
the implementing automation solutions with SIMATIC STEP 7 in situations where the
principles of GMP are mandatory.
Disclaimer
This manual is a guideline for system users and programmers that will help them to
integrate SIMATIC S7 programmable controllers (PLCs) and programming devices in a
GMP environment with regard to validation while giving consideration to special aspects
such as 21 CFR Part 11 (CFR Code of Federal Regulations).
We have checked the contents of this manual for agreement with the hardware and
software described. Since deviations cannot be precluded entirely, we cannot guarantee
full agreement. The information in this document is checked regularly for system changes
or changes to the regulations of the various organizations and necessary corrections will
be included in subsequent issues. We welcome any suggestions for improvement and
ask that they be sent to the Competence Center Pharma in Karlsruhe (Germany).
iii
Introduction
Conventions
The following conventions are used in this manual.
Activities involving several steps are numbered in the order in which the activities should
be performed.
Procedures involving few tasks are presented with a bullet ().
References to other manuals are shown in bold italic.
Menu commands are shown in bold face.
Additional support
Please talk to your Siemens contact at one of our agencies or local offices if you have
any questions about the products described here and do not find the answers in this
manual.
You will find your contact person at:
http://www.siemens.com/automation/partner
You will find the guidelines to the range of technical documentation available for
individual SIMATIC products and systems as follows:
http://www.siemens.de/simatic-tech-doku-portal
You will find the online catalog and the online ordering system at:
http://mall.automation.siemens.com/
If you have questions on the manual, please contact the Competence Center Pharma:
iv
Introduction
Email:
pharma.aud@siemens.com
Fax:
Further information about the products, systems and services from Siemens for the
pharmaceutical industry can be found at:
http://www.siemens.com/pharma
Training center
Siemens offers a number of training courses to familiarize you with the SIMATIC S7 and
SIMATIC STEP 7 operator control and monitoring system. Please contact your regional
Training Center, or the central Training Center in D 90327 Nuremberg.
Phone:
+49 (911) 895-3200.
Internet: http://www.sitrain.com
Technical Support
You can reach technical support for all A&D projects
Phone:
Fax:
Our newsletter, providing you with the latest information about your products.
The right documents for you, using our Service & Support search engine.
A forum where users and experts from all over the world exchange ideas
Information about on-site service, repairs and spare parts. And lots more under
"Services".
Introduction
vi
Table of contents
Introduction
iii
Table of contents
vii
1-1
2-1
2.1
Hardware Categorization ........................................................................................... 2-2
2.2
Software Categorization ............................................................................................ 2-2
2.3
Configuration Management ....................................................................................... 2-4
2.3.1
Configuration Identification ........................................................................................ 2-4
2.3.2
Configuration Control................................................................................................. 2-4
2.3.2.1 Version Control .......................................................................................................... 2-4
2.3.2.2 Change Control.......................................................................................................... 2-5
2.4
Software Creation ...................................................................................................... 2-6
2.4.1
Use of Typicals for Programming .............................................................................. 2-6
2.4.2
Identification of Software Modules / Typicals ............................................................ 2-6
2.4.3
Changing Software Modules / Typicals ..................................................................... 2-6
2.5
Access Protection and User Management ................................................................ 2-7
2.5.1
Using Access Protection in a System ........................................................................ 2-7
2.5.2
Requirements for the User ID and Password ............................................................ 2-7
2.5.3
Smart Cards and Biometric Systems......................................................................... 2-7
2.6
Electronic Signatures................................................................................................. 2-8
2.6.1
Conventional Electronic Signatures........................................................................... 2-8
2.6.2
Electronic Signatures Based on Biometrics............................................................... 2-8
2.6.3
Security Measures for User IDs/Passwords .............................................................. 2-9
2.7
Audit Trail................................................................................................................. 2-10
2.8
Time Synchronization .............................................................................................. 2-10
2.9
Data Backup ............................................................................................................ 2-11
2.9.1
Application Software ................................................................................................ 2-11
Process Data........................................................................................................................... 2-12
2.10
Retrieving Archived Data ......................................................................................... 2-13
2.11
Use of Third-Party Components .............................................................................. 2-13
3
System specification
3.1
3.2
3.3
3.3.1
3.3.2
3.3.3
3.3.3.1
3.3.3.2
3-1
vii
Table of contents
4
viii
5-1
Index
4-1
6-1
1-1
1.1
1-2
Validation Plan
QP
Qualification Plan
QPP
URS
FS
DS
Design Specification
FAT
SAT
IQ
Installation Qualification
OQ
Operational Qualification
PQ
Performance Qualification
VR
Validation Report
QR
Qualification Report
1-3
Validation plan
The validation plan (VP) specifies the overall strategy and specifies the parties
responsible for the validation of a system in its operational environment [PDA,
GAMP4].
In the case of complex plants (for example a production line with several
process cells and automation systems), there may also be a master validation
plan (MVP) as well as VPs valid only for specific process cells and systems.
See also GAMP4, Appendix M6, "Guideline for Quality and Project Planning".
Qualification plan
In contrast to the validation plan, a qualification plan (QP) describes the
qualification activities in detail. It defines the tests to be performed and indicates
the dependencies.
The qualification plan follows a validation plan. Due to the similar contents of both
documents, it is possible to combine the QP and the QPP.
Specification
The specification phase begins with the creation of the user requirements
specification. The user requirements specification is normally created by the user
and describes the requirements that the system should meet. On completion of the
user requirements specification, the functional specification is created, usually by
the supplier. The functional specification (FS) provides detailed information on the
requirements defined in the URS at the functional level. This is followed by the
detailed specification for implementation in the design specification (DS).
1-4
The functional specification and design specification also form the basis for
subsequent tests within the framework of the qualification or validation. The
following points must also be specified in the functional and design specification
phases:
Software structure
Programming standards
Naming convention
Implementation
During the implementation phase, the system is implemented according to the
design specification. Apart from the procedures and additional guidelines defined in
the QPP (for example, coding standards, naming conventions, data backup),
change management plays an important role making changes and deviations from
the original specification traceable.
See also GAMP4, Appendix M8 "Guideline for Project Change Control";
GAMP4, Appendix M10 "Guideline for Document Management".
1-5
FAT
On completion of the implementation, a factory acceptance test (FAT) is often
performed at the supplier's site. The purpose of this is to find and eliminate any
errors in the programming prior to delivery.
The aim of the FAT is the acceptance by the customer to allow the system to be
delivered in the tested status.
SAT
The site acceptance test (SAT) shows that an automated system works within its
target operating environment with interfaces to the instrumentation and plant
sections according to the specification. Depending on the project, the SAT can be
combined with commissioning (and therefore with the IQ or OQ).
Qualification report
Based on the qualification plan, the qualification report (QR) sums up the test
results of the tests performed and confirms the successful completion of the
qualification phases.
Validation report
The validation report (VR) sums up the results of the individual validation steps and
confirms the validated status of the system. The creation of both the validation plan
and the validation report is the responsibility of the customer.
Operation
1-6
1.2
Regulation /
Guideline
Issued by /
Title
Organization
21 CFR Part 11
US FDA
Electronic records,
electronic signature
US FDA
Current good
manufacturing
practice in
manufacturing,
processing, packing,
or holding of drugs;
General
Regulation /
Where
Recommendation Applicable
Regulation
Manufacturers
and importers of
medicines for
the US market
US FDA
Current good
manufacturing
practice for finished
pharmaceuticals
Annex 11 of the
EU GMP
Guideline
European
Commission
Directorate
General III
Computer-aided
Systems
Guideline
Europe
Annex 18 of the
EU GMP
Guideline
European
Commission
Directorate
General III
Good Manufacturing
Practice for Active
Pharmaceutical
Ingredients
Guideline
Europe
GAMP 4
ISPE
Worldwide
NAMUR
NAMUR
Recommendation
NE 58
Europe
NAMUR
NAMUR
Recommendation
NE 71
Operation and
Maintenance of
Validated Systems
Recommendation
Europe
NAMUR
NAMUR
Recommendation
NE 72
Europe
Note
This manual is based on the requirements of GAMP 4 and US 21 CFR Part 11.
1-7
NAMUR Recommendations
NAMUR Recommendations are reports of the experience that were produced by
the "Process Control Systems Special Interest Group of the Chemical and
Pharmaceutical Industry" for optional use by their members. They do not have the
status of standards or directives. The following NAMUR recommendations are of
particular interest with regard to configuration and the use of automated systems in
a GMP Environment:
1-8
1.3
Responsibilities
When configuring automated systems in a GMP environment and creating the
corresponding specifications, the responsibilities for the activities in the individual
life cycle phases must be specified. Since this is normally decided with a specific
customer and for a specific project and must be contractually agreed, it is
advisable to specify these responsibilities in the quality and project plan. See also
GAMP4, Appendix M2.
1.4
1-9
1.5
1-10
2-1
2.1
Hardware Categorization
According to the GAMP 4 Guide, Appendix M4, hardware components of a system
are divided into two categories. The hardware categories are listed below:
2.2
Software Categorization
According to the GAMP Guide for Validation of Automated Systems, the software
components of a system can be divided into five software categories. The five GAMP
software categories are listed below:
Category 2, Firmware
Category 2 includes the firmware, for example in field instruments or compact
controllers, whose configuration was adapted to the on-site conditions. Once again the
name and version of the firmware and its configuration must be documented and
verified during an installation qualification (IQ). The functionality of the device must be
verified in an operational qualification (OQ).
2-2
2-3
2.3
Configuration Management
According to the GAMP 4 Guide, configuration management is defined as the activity
necessary to define an automated system precisely at every point in its life cycle from
the first steps in development to its retirement.
Configuration management consists of the application of administrative and technical
procedures through the life cycle of a system to:
Identify and define basic system components and to specify them in general
Record and report the status of the items and modifications to them
2.3.1
Configuration Identification
Version and change management is only practicable with a suitable configuration
environment. Each software and hardware package is therefore identified by a unique
product identifier (MLFB number) and a version number. For the user software, the
parts of an automated system that are subject to configuration management must be
clearly specified. The system should therefore be organized according to configuration
items. These should be defined at an early phase of development so that a complete
list of configuration items can be created and maintained. The application-specific
elements should have a unique identifier (name or identification number). The degree
of detail when specifying the elements is determined by the needs of the system and
the supplier developing the system.
2.3.2
Configuration Control
The upkeep of the configuration items should be checked at regular intervals, for
example in reviews. Here, particular attention must be paid to the change control and
the related version control. Archiving and release of individual configuration items
should also be taken into account.
2.3.2.1
Version Control
To ensure correct change management, the configuration elements must be versioned.
The version must be updated with every change.
2-4
2.3.2.2
Change Control
During configuration, there must be suitable control mechanisms that achieve
transparency by documenting any changes. The control mechanisms are described by
SOPs and should include the following points.
Software versioning
2-5
2.4
Software Creation
When creating software, guidelines documented in the quality and project plan must be
adhered to (Good Engineering Practice GEP - awareness). Guidelines on software
creation can be found in the GAMP 4 Guide for Validation of Automated Systems
and in the relevant standards and recommendations.
2.4.1
2.4.2
2.4.3
2-6
2.5
Biometric systems
2.5.1
!
2.5.2
Note
It is important to make sure that only authorized persons can access PCs. This
can be achieved by suitable mechanisms such as remote kits.
2.5.3
Case sensitivity
2-7
2.6
Electronic Signatures
Electronic signatures are computer-generated character strings that count as the legal
equivalent of a handwritten signature.
The regulations for the use of electronic signatures are set out in 21 CFR Part 11 of the
FDA.
Each electronic signature must be assigned uniquely to one person and must not be
used by any other person.
It must be possible to confirm to the authorities that an electronic signature represents
the legal equivalent of a handwritten signature.
Electronic signatures can be biometrically based or the system can be set up without
biometric features.
!
2.6.1
Note
When exporting pharmaceuticals into the USA, the regulations according to 21
CFR Part 11 of the FDA must be adhered to.
2.6.2
2-8
2.6.3
2-9
2.7
Audit Trail
The audit trail is a control mechanism of the system that allows all data entered or
modified to be traced back to the original data. A reliable and secure audit trail is
particularly important in conjunction with the creation, change or deletion of GMPrelevant electronic records.
In this case, the audit trail must archive and document all the changes or actions made
along with the date and time. Typical contents of an audit trail must be recorded and
describe the procedures who changed what (old value/new value) and when.
The archiving period must match the period stipulated in the specification.
There must be adequate hard disk space to allow the entire audit trail to be stored until
the next transfer to an external data medium.
Systems must be used that ensure adequate data security (for example redundant
systems, standby systems, RAID 5).
2.8
Time Synchronization
Within a system, a uniform time reference must be guaranteed to allow messages,
alarms, etc. to be archived with unequivocal time stamps. Time synchronization to a
standard time is desirable, however not absolutely necessary. Time synchronization
when archiving data and analyzing problems in a plant is strongly recommended.
2-10
2.9
Data Backup
In contrast to the archiving of electronic data, data backups are used to create backup
copies which allow the system to be restored if the original data or entire system is
lost. 1
The backup procedure must cover the periodic backup of volatile information to avoid
total loss of data due to defective system components or inadvertent deletion of data.
Backup procedures must be checked to ensure the correct storage of data. Backup
records should be labeled clearly and intelligibly and dated. 2
Data backups are created on external data media. The data media used should comply
with the recommendations of the device manufacturer.
When backing up electronic data, a distinction is made between software backups (for
example application software, partition images) and archive data backups.
Here, particular attention is paid to the storage of data backup media (storage of the
copy and original in different locations, protection from magnetic fields, and elementary
damage).
2.9.1
Application Software
Software backups should be created following any software change to the system.
They must document the last valid software version of a system. If changes are made
to software components, it is sufficient to back up the modified components of the
application software. A complete backup of the software should nevertheless be made
at regular intervals. If software backups need to be created when changes are made to
the software of an existing system or during the installation of a new system, they
should be created after the installation. During the course of a project, the software
version should be backed up and documented in conjunction with defined milestones,
for example at the end of the FAT (in other words before the system is supplied), on
completion of the installation qualification (IQ) as a basis for the tests for operational
qualification (OQ) and, of course, on handover of the system to the user.
Software generations should also be recorded during the creation of new software
versions at regular intervals in the form of software backups.
Software backups must be created for both the application software and the
configuration parameters.
Date of creation
System designation
Software designation
"Good Practice and Compliance for Electronic Records and Signatures. Part 1, Good
electronic records management". ISPE/PDA 2001.
"Electronic records and electronic signatures assessment". Chris Ride & Barbara
Mullendore, PDA 2001.
2-11
Date of backup
2.9.2
Process Data
The data saved in the system, such as trends, measured values or alarms should be
backed up on external data media at periodic intervals. This measure can minimize
data loss if problems occur.
System designations
Date of creation
Current number
2-12
2.10
2.11
2-13
2-14
System specification
This chapter focuses on the selection criteria for the hardware and software. The
activities for the selection of the products, product variants and system constellations
are performed in the specification phase of an automation system. This is
demonstrated in the following life-cycle model by the marking in the left-hand area.
Apart from the technical aspects, there are additional selection criteria for hardware
and software in a GMP environment:
Modularity and
3-1
System specification
3.1
Service and support over all phases of the plant life cycle to maintain the validated
status
3-2
3.2
Redundant I/O modules for duplication of critical signals, only possible with an H
CPU.
Redundant CPUs
Display and upkeep of I&M data (Identification and Maintenance), see section
4.5.2 "Replacing/changing the hardware/firmware
3-3
System specification
Note
You will find technical details on the SIMATIC S7-300 / S7-400 programmable
controller systems, the range of I/O products, and the SIMATIC PCs in the current
SIMATIC catalog ST 70.
3-4
3.3
3.3.1
3.3.2
S7-GRAPH
For configuring and programming sequential processes using sequencers. If the
ProAgent option (see below) is used for visualization, manual input does not
generate messages that can be recorded in an audit trail. The sequencer picture
should only be used to eliminate problems in S7-GRAPH sequencers.
S7-SCL
For programming in a high-level language similar to PASCAL
S7-PLCSIM
For the functional testing of the compiled user blocks regardless of the available
target hardware on the engineering system
S7-HiGraph
For the graphic description of asynchronous processes and status graphs
3-5
System specification
CFC
Extensive library of ready-made blocks
The program is created by drawing a technological chart.
CFC (Continuous Function Chart) is a graphic editor that is used in conjunction
with STEP 7 basic software. It is used to create an overall software structure for a
CPU from the ready-made blocks. For this purpose, blocks are positioned on
function charts, parameterized and interconnected. Interconnecting means that the
connections for communication between blocks are established so that values from
an output can be transferred to one or more inputs.
How it works in principle
A block library is part of the CFC package. Users can then add their own specific
blocks. The CFC Editor works with graphic tools. A block is selected from the block
pool and inserted in the chart that serves as a sort of "drawing board". Technology
functions need only be parameterized by linking function blocks (AND, OR, PID
controllers). Time-consuming programming is no longer necessary. Details such as
algorithms or the allocation of machine resources recede into the background and
the technological aspects of configuration come to the fore.
When the configuration data is transferred to the target system, the charts are first
compiled and then downloaded. The CFC option guarantees the consistency of the
configuration data when changes are downloaded. If there is already data on the
automation system, it is possible to download only the changes (with a CPU 400).
Once again, the consistency of the project data is guaranteed. By comparison, the
STEP 7 basic software transfers changes to the target system block-oriented and
these become effective immediately in runtime. This usually results in
inconsistencies between an FB and its instances that can lead to the CPU
changing to STOP due to the download in runtime.
S7-PDIAG
For configuring process diagnostics and increasing the availability of machines and
production facilities
SIMATIC ProAgent
The SIMATIC ProAgent optional package makes the display and operator control
pictures available on pages of SIMATIC HMI (WinCC Flex and WinCC) based on a
standardized user interface (uniform for S7-PDIAG and S7-GRAPH).
Note
SIMATIC ProAgent cannot be used with redundant WinCC servers.
3-6
DOCPRO
DOCPRO is a tool for creating and managing plant documentation. DOCPRO
enables the structuring of project data, the editing in form of circuit manuals and
the printout in a uniform print layout.
Distributed Safety
For creating safety-oriented automation applications with SIMATIC S7 in F-LAD or
F-FBD with CPU31xF and CPU416F
F Systems (F/FH)
The S7 F Systems engineering tool, which is integrated in the SIMATIC Manager,
can be used to configure an S7 F system (F/FH). This tool can be use to assign
parameters for the CPU and F signal modules and to create applications in CFC.
Predefined, TV-approved blocks are available for this purpose. The failsafe
blocks relieve the user of having to perform the diverse programming tasks for the
detection of errors and reaction to errors. (Can be used with CPU41x-4H)
-
Runtime software
PID Self-Tuner
The "PID Self-Tuner" software package turns existing PID controllers into selfsetting PI or PID controllers. PID Self-Tuner can be flexibly combined with PID
Control (integrated in STEP 7), Standard PID Control, Modular PID Control,
FM 355, FM 455, and any PID algorithm
Software Redundancy
The "Software Redundancy" software package allows fault-tolerant controllers to
be set up cost-effectively with standard hardware components of the S7-300 and
S7-400. ALARM_x messages cannot be used.
3-7
System specification
SIMATIC iMap
The SIMATIC iMap application (license required) is used to configure
communication for individual components (Component based Automation CBA) in
distributed automation solutions. Each bus node is displayed graphically along with
its communication data, such as its IP address. The application is based on the
PROFINET standard and all Ethernet nodes require the PROFINET
communications mechanisms. More detailed information can be found in the
SIMATIC ST 70 catalog.
3.3.3
3.3.3.1
Access Control
SIMATIC logon
For user management in STEP 7, the licensed software SIMATIC Logon is required.
The user logs on via the SIMATIC Logon Service dialog box with user ID and
password. Only authorized users have access to the STEP 7 project (see section 4.6
"Access protection").
3.3.3.2
Version trail
The licensed Version Trail software is used to version STEP 7 projects. Major versions
and minor versions can be specified by the user for the versioning. The criteria that
decide whether the STEP 7 project is to be versioned as a major version or a minor
version must be specified in the configuration management as well as the configuration
elements that are to be versioned. To better understand the versioning, the individual
versions should be assigned a version name and an informative comment.
Note
Versioning using Version Trail relates to complete STEP 7 projects. If an HMI
system such as SIMATIC WinCC or SIMATIC WinCC flexible is integrated in the
STEP 7 project, the HMI system is also included in the versioning.
3-8
3-9
System specification
3-10
4.1
Introduction
This chapter explains the configuration of automation systems with STEP 7 in a GMP
environment based on examples. The configuration of HMI systems in a GMP
environment is not described in this chapter. Further information can be found in the
SIMATIC WinCC and in the SIMATIC WinCC flexible GMP Engineering manuals.
The following graphic displays the life-cycle model. The focus of this chapter, the
implementation, is indicated by the highlighting in the lower part of the graphic.
4-1
4.2
4-2
4.3
Software installation
The STEP 7 basic software is preinstalled on a programming device such as the Field
PG. To configure the automation system on a standard PC, the STEP 7 basic software is
installed on the PC. Hardware requirements and approved operating systems are
documented in the readme file in Start > SIMATIC > Product Notes on the product CD.
The connection to the automation system is performed either via the MPI interface, which
is already integrated in the programming devices, via PROFIBUS DP or via Industrial
Ethernet. Suitable plug-in cards are available for installation in standard PCs.
For detailed information on hardware, refer to the current SIMATIC ST70 catalog.
4-3
4.4
4.4.1
Software creation
The central user interface of the STEP 7 basic software is the SIMATIC Manager. The
STEP 7 project is created and managed in the SIMATIC Manager. All objects of the
project are displayed in a clear tree structure. During configuration and creation of the
program, various editors, for example HW Config, Symbol Editor, LAD/STL/FBD Editor
etc., are opened.
Using the STEP 7 basic software, a modular program is created. Different block types
provide support for the structuring of the software.
A STEP 7 project or multiproject includes the hardware configuration of one or more
automation systems, the symbol table, the application software for the individual
automation systems, the configuration of the network connections and the
documentation. If HMI systems are integrated in the project, their project data is also
included in the STEP 7 project.
The folder for all projects and libraries of an automation solution is known as the
multiproject and contains one or more STEP 7 projects and optionally also libraries. The
projects within the multiproject can contain objects with cross-project relationships (e.g.
cross-project S7 connections).
Benefits of Multiproject
If projects are part of a multiproject, they can be created with a smaller size and
clearer structure.
Using multiprojects, you can, for example, create one project for each operator and
divide the stations among the operators for distributed execution.
Cross-project functions allow you to handle a multiproject almost like a single project.
For more detailed information, refer to the STEP 7 Help > Working with projects in a
multiproject and the manual Configuring Hardware and Communication
Connections STEP 7 > Chapter 16.
4.4.1.1
4-4
Note
Once all the functionalities have been identified, the next step is to check the
extent to which standard components (SFB /SFC / FB / FC) can be used. The use
of standard components greatly reduces validation effort since no software is
being created and the only activities involved are configuring calls and setting
parameters.
The standard components are listed and documented in the STEP 7 Help in
Calling Reference Helps > Language Descriptions, Help on Blocks, System
Attributes.
To create the software, the STEP 7 basic software provides the programming languages
Ladder Diagram (LAD), Function Block Diagram (FBD) and Statement List (STL)
complying with the standard DIN EN 6.1131-3 / IEC 1131-3. Users also have the option
of using other programming languages (see also section 3.3.2 "Additional engineering
software).
The software is created in graphical form not only in LAD, but also in FBD. LAD is read
as a circuit diagram, FBD uses the graphic symbols of Boolean algebra. The syntax is
checked as entries are made. It is possible to switch over directly from LAD to FBD and
vice versa. This type of representation provides a fast overview of the programmed
functions and makes these programming languages the language of choice when
creating programs.
The Statement List programming language (STL) lists the program code line by line. LAD
and FBD can always be represented in STL. Since, however, not all instructions, for
example mathematical calculations, can be implemented with LAD or FBD, the STL
programming language is used when these are required.
The program is created in the LAD/STL/FBD Editor in the form of blocks. Functions that
are required several times in the program are programmed separately in user function
blocks (FBs) or functions (FCs), tested as user-specific standard components and called
where required. Specifying a variable interface for FBs allows the function to be called
repeatedly with different parameter settings (for example a motor block). An instance DB
is assigned to an FB.
4-5
The way in which message numbers are assigned is set in the block container in Special
Object Properties.
4-6
Block properties
When a new block is created in the SIMATIC Manager, the block properties are
configured first. When a block is created in the LAD/STL/FBD Editor, the block properties
should be edited later in the SIMATIC Manager.
The dialog for configuring the properties opens automatically after the block type is
selected.
The block number, name, creation language etc. are defined in the properties. The time
stamps for Date created: and Last modified: are assigned automatically by the STEP 7
basic software according to the local computer time. The Comment field shows the
comment on the block that was entered before the first network in the block.
4-7
To keep track of different block versions, a version number can be entered manually
here.
The Calls tab lists which blocks this block itself calls. Special block attributes are
assigned in the Attributes tab, for example, the S7_m_c attribute required for mapping
the interface to the SIMATIC WinCC operator control and monitoring system for
integrated operation. (See also section 4.4.2 "Integrated HMI system")
Additional block properties such as KNOW HOW protection are only displayed here.
Once the block properties are completed, the block is created as an object in the Blocks
folder. Double-clicking on the block opens the LAD/STL/FBD Editor for program creation.
4.4.1.2
4-8
The software should be well structured and created in as simple a form as possible.
This makes it easier to understand the programmed functions.
Functions that are used often are created once in an FB (can be assigned an
instance DB) or a typical and tested. The block / typical is instantiated in the
program.
It should be possible to display the programmed networks in LAD / FBD / STL on one
screen page so that the programmed function can be seen all at once.
Adequate care should be taken when calculating the execution times in the PLC
program. Example: When calculating the time for a cleaning procedure, the expired
time should not be calculated simply by deducting the current absolute time from the
starting time. This can lead to serious problems if the time is changed during the
cleaning procedure, for example due to synchronization or due to a standard/daylight
saving time change. This could lead to a shortened cleaning time. -> This means a
deviation from the specification. -> This might mean the loss of an entire batch, etc.
When creating the program, standard components already on the CPU should be
used. (For example, fro reading in analog values (FC105, FC106), for alarm
processing (Alarm_S etc.)
Routines for cyclic processing, warm restarts, hot restarts and error handling and
messages should be included in FBs created by the user. For processing, the same
FB is called in the appropriate OBs.
Indirect addressing should be avoided as this has a significant adverse effect on the
readability of the program. If indirect addressing cannot be avoided because of the
function to be implemented, a plausibility check of the pointer calculation should be
incorporated. For indirect addressing, SCL is the recommended programming
language. The software must be commented on in detail.
Check whether the previously defined "Device identifier name convention" has
been used consistently in the software
Check whether a unique symbol name has been assigned for all operands
Check whether each operand has been used in the user program
Check whether all inputs/outputs are clearly contained in the symbol table
Check for blocks that are not called, networks without program (dead code)
Check whether all operands used in the software are set/reset/assigned only
once
4-9
4.4.1.3
Software interlocks/safety
It is the responsibility of the software engineer to ensure that the user program functions
in a safe way under all conditions. Before creating the software, events must be
considered that can lead to a dangerous reaction and the appropriate interlocks must be
created.
Such events are, for example:
Faulty input from external operator panels may not lead to any incorrect reactions
Output values of the analog output signals when the CPU unexpectedly goes into
STOP
For legal reasons, emergency stop functions may not be implemented with a
standard PLC. The fail-safe systems are available for this. The SIMATIC Safety
Matrix is recommended. Safety can also be guaranteed without a PLC with an
emergency stop.
Note
The selection of the right hardware is also important to guarantee the correct logic
decisions in a production plant (DI = 0 means 'Sensor open' or 'Wire breakage').
Wire breakage monitoring can also be performed, for example, via signal modules
with NAMUR technology.
4-10
4.4.2
SIMATIC WinCC
To allow integration of SIMATIC WinCC, an OS object is created for every operator and
monitoring station in the tree structure of the des SIMATIC Manager. All variables (tags)
necessary for operator control and monitoring in WinCC are assigned the OCM attribute
S7_m_c.
The OCM attribute can be configured for the following variables:
Input / output and in-out parameters of function blocks registered for mapping with
S7_m_c.
The attribute is assigned to function blocks / data blocks in the object properties, to
individual parameters in the function blocks, or to the symbols in the symbol table.
4-11
The graphic above shows the symbol table with the columns for setting attributes. The
attribute for operator control and monitoring is enabled in column B.
The graphic above shows the assignment of attributes for a block parameter.
Naming convention
To allow the configuration data for WinCC to be saved and transferred, they are stored
under a unique name assigned automatically by STEP 7. The names of the variables
that can be controlled and monitored by an operator, CFC charts and the S7 programs
form part of this name and are therefore subject to certain conventions:
The names of the variables, S7 programs and CFC charts should not contain any
blanks or special characters.
AS-OS Engineering
The data prepared for display in WinCC is transferred to the data management of WinCC
using the AS-OS Engineering transfer system. The AS-OS Engineering application ships
with the WinCC system software and must be installed separately. During installation,
the S7 project of an automation system is assigned to an OS object. The variants
whereby several automation systems are visualized on one OS or several operator
stations are used to visualize one automation system can also be configured.
4-12
4.4.3
Software documentation
Detailed commenting is required for good readability of the user program. The following
comments are available in the STEP 7 basic software:
Normally the block comment describes the function of the block. The block comment is
also suitable for manual upkeep of the change history.
The block comment is also displayed in the Properties dialog for the block opened with
the Object Properties context menu of the block in the SIMATIC Manager.
4-13
Line comment
The user program also includes comments for each line if STL or the optional language
SCL was used for programming.
Symbolic name
A symbolic name is entered in the symbol table for all addresses such as digital and
analog inputs and outputs, counters, timers, bit memory depending on its use with bit,
byte, word or double word and the programmed blocks (FB, FC, UDT, DB). This
symbolic name should be selected so that, for example, the relationship to a unit or a
function can be recognized. A maximum of 24 characters are permitted for a symbol
name. The name is not case-sensitive. A detailed comment can also be entered.
With STEP 7, it is possible to export, translate and re-import texts that exist in one
language in a project and then display them in the language into which they were
translated. These include titles, comments, and display texts. You will find more detailed
information in the STEP 7 Help under Setting Up and Editing the Project > Editing a
Project > Managing Multilingual Texts.
4-14
DOCPRO
The licensed DOCPRO option is a user-friendly tool for creating a consistent plant log
including versioning.
4-15
Meaning
No.
Meaning
10
11
Sheet no.
12
Designation
13
Document type
14
15
Modified by (name)
Date of creation
16
Special Comment
17
Creating company
Document number
18
Company, Year
4-16
All the data created with a configuration tool can be inserted in DOCPRO documentation.
The data is therefore available in a clearly structured form and can be used centrally for
qualification. Documentation could, for example, contain the following data:
Variable tables with status formats along with status and control values
Connection tables
CFC Charts
Note
Entering an object into the documentation creates a print object. DOCPRO does not store the
object in its own data management but requests it from the application responsible at the time
it is printed. The printouts always contain the current data.
4-17
4.5
Configuration management
STEP 7 is the basic package for configuring and programming SIMATIC automation
systems. The SIMATIC programming languages integrated in STEP 7 meet the
requirements of the standard DIN EN 6.1131-3 / IEC 1131-3. Standards are part of the
basic package in the form of libraries. These include, for example, function blocks for PID
controllers, time stamping, interrupt processing, system functions, system function
blocks, etc.
The configuration and program creation is user-specific, dependent on the requirements
of the automation task. The software creation is difficult to trace without version and
change management. Therefore, a professional configuration management should be
used right from the start of the software creation.
The configuration management should be described in an SOP. Everyone involved in the
project must be trained in the use of this SOP; this produces a common base for the
configuration.
Note
The following section provides an example for the software versioning and for the
change control. Changes made to a plant in operation should always be agreed
with the plant operator.
4.5.1
A hotfix is an interim bug fix. Hotfixes are available only in special situations.
The validation work with respect to changes is specified within the framework of a risk
evaluation.
4-18
Upgrades (migration)
An upgrade upgrades the STEP 7 basic software. In addition to the expansion of the
range of functions, the upgrade can also mean a supplement to the integrated hardware
catalog. Adaptations may be necessary in the HW Config editor or in the connection
settings in the NetPro editor.
Appropriate procedures are documented in the STEP 7 help system under Editing
Projects with Different STEP 7 Versions.
The precise software version with which the STEP 7 project was created and the optional
packages used can be seen using the context menu Object Properties > Required
software packages for the top node in the project structure.
The Execute button checks the current project or the current library for software
packages that are required to process certain objects. This function is used when a
project or a library is edited the first time with an older STEP 7 version.
Note
With updates and migrations, a validation check should be performed on the tools
used. Standard tools can be used without any additional validation work.
4-19
4-20
It is recommended that a risk evaluation be carried out beforehand and the main
testing points for the qualification specified
Qualification
4.5.2
It is recommended that a risk evaluation be carried out beforehand and the main
testing points for the qualification specified
Qualification
Replacing modules
Before replacing modules, the module type must be checked. The Identification and
Maintenance data (I&M ) is helpful. I&M functions define information functions with
information about devices can be called up, for example, vendor, version, ordering data
etc. By using I&M functions, it is possible to evaluate information on the device in the
phases configuration, commissioning, parameter assignment, diagnostics and repair.
Identification data (I data) is information on the module, some of which is printed on the
module housing. I data can be read during module diagnostics with STEP 7 ("General"
tab and "Identification" tab of the module information). M data is plant-dependent
information such as the HID (plant designation), LID (location identifier), installation date
and comment that should be maintained in the object properties of the module in HW
Config. M data can be written to the module using online access.
If a new module type is available, the compatibility to the previous type must be checked.
If it is compatible, the module can be replaced directly.
Note
When checking the compatibility of a CPU module, it must be taken into
consideration whether faster runtimes have an effect on the user program.
4-21
4.5.3
Name
Date
Version number
Change history
Note
Versioning of the application software in STEP 7 is possible block-oriented. It can
be maintained, for example, with the "Version" box in the block properties and / or
with additional comments.
The procedure for the versioning is part of the configuration management and must be
described in a SOP, which is binding for all persons participating in the project.
Below, you will see examples and options for versioning in STEP 7.
4-22
The version number is assigned manually. The criteria for the assignment of a major or
minor version number must be set down in a SOP along with information on the
configuration elements to be versioned.
The change history is entered in the block comment. The block comment and with it the
change history can also be viewed in the object properties of the block in the General Part 1 tab.
The Date created is fixed automatically by STEP 7 when the block is created. The
information in Last modified: is also recorded automatically by the system separately for
code and interface changes.
4-23
Every archiving action in Version Trail is recorded with the action, project name, version
number, time stamp, logged on user ID and comment. The history can be viewed using
the Options > Version History menu.
The Version Trail software can be accessed directly in the SIMATIC Manager to archive /
retrieve a STEP 7 project. The menu File > Version > Archive (Retrieve) is opened for
this.
4-24
Note
If an HMI system such as WinCC or WinCC flexible is integrated in the STEP 7
project, the HMI project is also included in the versioning.
The help system of Version Trail has detailed information on creating and managing
project versions.
4.5.4
Change control
The change control provides information on changes made to the application software
(Who changed What When).
Either block code or the time stamp can be compared. If the SDB check box is enabled,
the hardware configuration is also compared. The same time stamp always means the
same code. All block types such as OB, PB, FB, FC, DB, UDT etc. are included in the
comparison. The result is shown in a dialog in which the block list and the result of the
comparison are displayed. Detailed information on each block can also be called up. The
result of the comparison can also be output on a printer as documentation.
4-25
Note
The Version Cross Checker option is necessary to compare CFC source files.
Memory reset
The change log can be displayed in the SIMATIC Manager by selecting, for example, the
Station object in the tree structure and then selecting the Change log Display shortcut
menu.
4-26
The contents of the change log depend on the selection in the structure tree. A change
log can be displayed for each station and across the entire project. The displayed log
shows the accesses to the target system. In the lower area, the entered mandatory
comment, time stamp and user ID are displayed for the selected entry.
Note
Prior to downloading, the local data requirements per priority must be obtained
with the reference list and checked against the parameter settings in HW Config
and, when necessary, adapted.
4-27
4-28
4.6
Access protection
Access protection can be set up both for access to the CPU as well as for the STEP 7
project.
4.6.1
Note
A hardware memory reset on the CPU cannot be prevented either for S7-300 or
for the S7-400. An overall reset is the same as removing the module in a deenergized state. Therefore, it is the responsibility of the operator to secure the
physical access (e.g. locked cabinet) to the automation systems.
The dialog shown here depends on the version of the CPU module and is therefore only
an example.
Three different protection levels can be configured for this CPU.
1. Whether PG functions are allowed depends on the keyswitch setting (default setting).
Example: Keyswitch setting RUN: Loading of objects from the CPU to the
programming device is permitted, i.e., only read-accessing programming device
functions are permitted. Functions for process control, process monitoring and
process communication are allowed. All information functions are permitted.
2. Functions for process control, process monitoring and process communication are
allowed. All information functions are permitted.
3. The password is queried with every operator activity or can be entered for an entire
project session. The rights enabled by the password can be canceled again explicitly
but always end when the SIMATIC Manager is exited.
4-29
4.6.2
The users must be set up in Windows under Control Panel > Management > Computer
Management > Local Users and Groups. The users and user groups set up in
Windows are displayed in the bottom left-hand area.
Two roles with different rights are available in the system for the access protection of the
STEP 7 projects:
4-30
Project administrator
The project administrator has rights for the administration of the users, for the
activation/deactivation of the access protection, for the activation/deactivation of the
change log and for the complete editing of the project.
Project editor
The project editor has the right for the complete editing of the project, but cannot
administrate users or change the settings for the access protection or the change
log.
When the access protection is activated for the first time, a dialog box appears for the
entry of a project password. For users that are not entered as project editors or do not
have SIMATIC Logon installed, the STEP 7 project can only be opened with the project
password.
After the access protection has been activated for a STEP 7 project, the SIMATIC Logon
service for logging on the user is displayed when the project is opened. SIMATIC Logon
controls the user ID and password.
Note
If a user who is not entered in the user administration of the STEP 7 project logs
on with the SIMATIC Logon service, a query appears for the project password.
The project password should therefore be treated as confidential. Access to and
constraints regarding the use of the project password should be regulated (for
example in a SOP).
Note
It is recommended that the access protection and the change log be activated
after the first qualified version.
4-31
4.6.3
Block protection
Blocks of the types OB, FB, FC and DB can be protected. To assign the Know-How
attribute to protect a block, the block is generated in LAD/STL/FBD Editor as an STL
source. This function is selected with the File > Generate Source menu. A name is set
for the block source and the block to be generated is selected. The generated source is
stored in the Source folder in the SIMATIC Manager. Double-clicking on a source opens
it.
4-32
6. Differences in the comparison can, for example, trigger messages in the HMI system
7. Detection of unauthorized changes with the online / offline comparison of individual
blocks (section 4.5.4 "Change control") or Version Cross Checker in conjunction with
CFC (section 3.3.3.2 "Versioning, Change control")
A description of SFC51 RDSYSST for evaluation of the SZL partial system status list for
diagnostic functions is available in the STEP 7 Help as follows:
1. STEP 7 Help > Calling Reference Helps > Language Descriptions, Help on
Blocks, System Attributes > Help on SFBs/SFCs
2. Under the title SFCs for Diagnostics > Reading a System Status List or Partial
List with SFC 51 "RDSYSST, there is a general description of the use, parameter
assignment and call of SFC51
3. Under the title Communication Status Data > SZL_ID W#16#0232 Status data for
one communication unit, CPU protection level and operator control settings,
there is a description of the partial list for communication.
4. Under Data Record of the Partial List Extract with SZL-ID W#16#0232 Index
W#16#0004, there is a description of how checksums are stored.
4-33
4-34
4.7
Audit Trail
The user program (STEP 7 project) is a validated version. Therefore, changes to the
automation systems are not made during the runtime.
Unauthorized intervention on the automation system can be detected during runtime.
The measures necessary for this are described in section 4.6 "Access protection".
The audit trail for operator input to the process is generated by the operator control and
monitoring system. More detailed information can be found in the SIMATIC PCS 7,
SIMATIC WinCC or SIMATIC WinCC flexible GMP Engineering manual: "Guidelines for
Implementing Automation Projects in the GMP Environment".
4-35
4.8
Time synchronization
Within a system, a uniform time reference must be guaranteed to allow messages,
alarms etc. to be archived with uniform time stamps. Time synchronization to a standard
time is desirable, but not mandatory. Time synchronization is recommended especially
for the archiving of data and the analysis of faults (Sequence of Events, SOE).
The time synchronization is based on the standardized world time UTC (Universal Time
Coordinated).
In an automated system, either the controller, the operator control and monitoring system
or for example SICLOCK can be the time master. SICLOCK supports synchronization
with based on GPS or DCF77.
For time synchronization (in the millisecond range) over Ethernet, the SIMATIC time
synchronization protocol can be used. Setting the time (in the seconds range) is handled
by the NTP protocol (Network Time Protocol).
In the new CPUs (CPU 319) of the S7-300 automation system, the time is synchronized,
otherwise it is set. Setting the time does not, however, have the same accuracy as time
synchronization because frame and script execution times are also involved.
The S7-400 automation systems can be operated time-synchronized on the Ethernet
plant bus. One S7-400 is set as master, all others are slaves. These settings are made in
the HW Config Editor in the Object Properties dialog for the CPU, CP, DP master, DP
slave.
The procedure for setting the time in the automation system is the same for the Ethernet,
Profibus and MPI bus systems. The Ethernet NTP is not available on Profibus and MPI.
The system time of the automation system is available in this data area to be fetched by
WinCC flexible.
The system time is read out with cyclic interrupt OB35. As default, OB35 executes every
100 ms. The time at which execution of OB35 was started is in the local data of the OB
and simply transferred to the previously defined data area.
4-36
In WinCC flexible, the data area is specified for the area pointer date/time controller
and the acquisition cycle for time synchronization is set. The operator device runs the
synchronization automatically.
4-37
4.9
Time stamping
The S7-300 and S7-400 automation systems are equipped with real-time clock (software
clock). This module time is used for time stamping. As of the STEP 7 V5.4 basic version,
the CPU time that corresponds to UTC time is converted to the local time of the
engineering system or PG. This means that time stamps, for example of entries in the
diagnostic buffer are displayed in the local time of the PG/PC.
In the bit signaling method, the acquisition interval, bus runtime and processing time are
contained in the time stamp. Messages present for a time shorter than the acquisition
cycle are lost. The bit message procedure and limit value monitoring can be used in a
WinCC single user system. The bus load is high (operator system polls).
In redundant systems or WinCC and WinCC flexible systems with several operator
stations, chronological signaling is used for coordinated acknowledgment and
transmission.
Time stamping via the message number method is much more precise. The bus load is
low (AS signals active). If high accuracy of the time stamp for the occurrence of the
alarm event is important (time stamping in the ET200M), the alarm sample ALRM7PBT
can be purchased for the S7-400 automation system (Entry ID 20614217). This example
records the original time stamp when the alarm event occurs and buffers the
accumulating alarm events for transfer to the HMI system WinCC.
There are, however, restrictions relating to the message number procedure, as follows:
SIMATIC WinCC flexible supports only the message number procedure with the
alarm blocks ALARM_S/SQ/D/DQ. This means that in the most powerful current
CPU3xx, a maximum of 60 messages can be generated and in the most powerful
current CPU 4xx, a maximum of 200 messages.
A CPU4xx can send up to 10000 instances to a SIMATIC WinCC system using the
message number procedure, which means up to 80,000 messages via the alarm
blocks ALARM, ALARM_8/8P.
Note
The use of the signaling method is a decisive criterion for the selection of the
hardware components.
4-38
4.10
CPU storage
When the user program is downloaded from the programming device to the CPU, only
the logic and data blocks are downloaded to the work memory of the CPU. The symbolic
address assignment (symbol table) and the block comments remain on the PG.
The memory of a CPU is divided into load memory and work memory. To ensure fast
processing of the user program and to put as little load on the restricted work memory,
only the parts of the blocks relevant for program execution are loaded in work memory.
The following schematic illustrates how the program is loaded into CPU memory.
4.10.1
Overwriting a data block stored on the MMC is only possible with system functions. This
should not be done cyclically but only sporadically since the number of writes to an MMC
is limited.
The advantage of the MMC is that data is not lost during a power down although the S7300 does not have battery backup. Runtime data from the work memory is transferred to
the MMC with the residual voltage. However, only the amount of runtime data, limited by
the size of the retentive memory area of the CPU, is written back.
Guidelines for Implementing automation projects in a GMP environment
A5E01100600-01
4-39
Note
The size of the retentive memory area available for reading back runtime data if
there is a power down depends on the selected CPU. Generally, the retentive
memory area is only half the work memory. This can lead to a loss of runtime
data.
Note
An MMC is designed for a limited number of write operations (approximately
100,000). Each loading operation, each power failure means a write access. The
number of write accesses is usually not critical when it is ensured that there are
no cyclic write accesses to the MMC.
When the maximum number of write accesses has been reached, the MMC must
be replaced with a new MMC. However, this can only be performed with the
power turned off, which means runtime data loss.
4.10.2
4-40
4.11
The File > Save As menu command makes a copy of the STEP 7 project, for
example a backup copy. Adequate storage space should be available. At regular
intervals, the With Reorganization check box should be enabled to reduce the
storage requirements for the project. A backup copy can be edited with the File >
Open menu command.
During the engineering phase, it is advisable to enable the check box Archive
automatically on opening project or library.
For information on archiving, refer to the STEP 7 Help Printing and Archiving >
Archiving Projects and Libraries > Requirements for Archiving.
4-41
In the licensed Version Trail software (see section 4.5.3 "Versioning of the
application software"), the STEP 7 project is backed up with a major and minor
version. Each version can be decompressed again with Version Trail.
Note
The Version Trail option is recommended for version management of the STEP 7
project.
4-42
5.1
Diagnostic tools
User-friendly functions for hardware and software diagnostics are already integrated in
the STEP 7 basic software. Primarily, these functions are used for commissioning the
user program and diagnostics if errors occur.
Hardware diagnostics
Hardware diagnostics is performed in the STEP 7 basic system with the SIMATIC
Manager or with the HW Config Editor. Various examples are listed in the following.
The diagnostic options are described in detail in the STEP 7 help system under
Diagnostics.
The View > Online menu, for example, marks modules with an informative icon.
The view changes to the online view of the project and access to the target system
is possible.
The PLC > Diagnostics/Settings > Hardware Diagnostics menu opens a dialog
in which module information is displayed.
If there are problems on the module, the problems are listed in the Status box. The
precise cause of the problem can be analyzed in the Diagnostic Buffer tab.
5-1
Software diagnostics
Variable tables and the status display of the individual blocks are used for the software
diagnostics or software test. Various examples are listed in the following. The
debugging options are described in detail in the STEP 7 help system under
Debugging.
Variable tables
Variables, data areas, bit memory, timers and counters are put together in any
combination in variable tables so that their current values can be read out. The values
can be manipulated via the control function. The variable tables are saved under a
name and can be called at any time.
5-2
Note
The control function in the variable table is very dangerous and only permitted during
the development phase of the user program. The modify function should be
prevented in runtime with the write-protection or Write/read protection setting in
the object properties of the CPU. (See also section 4.6.1 "Access protection to the
CPU")
Note
The modify function in the LAD/STL/FBD Editor is extremely dangerous and is
only permitted during the development phase of the user program. The modify
function should be prevented in runtime with the Write-protection setting in the
object properties of the CPU see also section 4.6.1 "Access protection to the
CPU").
5-3
5-4
5.2
Simulation tools
The licensed S7-PLCSIM optional package simulates an automation system on the
computer or programming device (field PG) on which the running program is tested.
Since the simulation is implemented entirely within the STEP 7 software, no S7
hardware (CPU or signal modules) is required. Programs for S7-300 and S7-400 CPUs
can be tested with the simulated S7-CPU and bugs eliminated.
The application has a simple user interface for monitoring and changing various
parameters used in the program (for example for activating/deactivating inputs). The
various applications from the STEP 7 software can also be used while the simulated
CPU is executing the program. Variables can, for example, be monitored and modified
using a variable table.
Note
It is possible that brand new SFBs/SFCs of the CPUs are not supported. The
integration of updated or new functions takes time to be included in S7-PLCSIM.
5-5
5.3
5-6
5.4
Rewiring S7 programs
The STEP 7 basic software supports rewiring of inputs/outputs, bit memory, timers,
counters, functions and function blocks. During the rewiring, an old address is replaced
by a new one. The rewiring is documented in an information file.
Note
If a symbols leading is set, the program must be recompiled with Check Block
Consistency.
5-7
5-8
6.1
Introduction
This chapter concentrates on system functions that support qualification activities.
These activities take place in the "Test / Qualification" phase and they are highlighted
in the life cycle model below in the right hand part of the graphic.
The aim of the qualification is to provide documented proof that the system was set up
according to the specifications and that all specified requirements have been met. The
qualification describes, executes and finally evaluates all the activities necessary for
this. Various standard functionalities of SIMATIC STEP 7 can be used to support the
qualification during IQ and OQ.
6-1
6.2
Number of racks
Address description
Etc.
Note
The hardware configuration can be printed out and used as qualification
verification (IQ/OQ) of the installed hardware components. A visual inspection of
the installed hardware can be made at the same time. The hardware used must
match that in the control cabinet documentation.
6-2
MAC address (when using the ISO protocol on the plant bus)
PROFIBUS addresses
Etc.
Note
The network configuration can be printed out and used as qualification verification
(IQ/OQ) of the configured network structure. A visual inspection of the configured
network structure can be made at the same time.
6-3
6.3
6.3.1
Standard libraries
6.3.2
The list provides information on the installed software products, software components
and DLLs on the local computer. This information can be used, for example, to include
the installed software in the installation qualification.
6-4
6.3.3
In conjunction with the SIMATIC Logon option, an access protection can be activated
for the Automation License Manager application. To do this, select File > Settings >
Activate SIMATIC Logon access protection.
The users are assigned roles in the File > User Management menu. Certain functions
are associated with roles, such as Licenser or Power user, that can be performed by
the assigned users in the application.
6-5
When the Automation License Manager is started, the SIMATIC Logon service opens
for logging on a user. SIMATIC Logon controls the user ID and password.
Note
The installed licenses must correspond to the requirements defined in the
specification.
The installed licenses can be printed and used for the qualification (IQ/OQ).
6-6
6.3.4
Check of the operating philosophy (access control, group rights, user rights)
6-7
6-8
Index
2
21 CFR Part 11.................................................... 1-7
A
Access control ..................................................... 3-8
Access protection ....................................... 2-7, 4-29
Access protection - CPU ................................... 4-29
Access protection - Step 7 project ..................... 4-30
Audit trail................................................... 2-10, 4-35
B
Backup .............................................................. 2-11
Backup process data ......................................... 2-12
Backup user software ........................................ 2-11
Backup, Restore - System /
Application software ...................................... 4-41
Biometric systems ............................................... 2-7
Bloc container...................................................... 4-6
Bloc properties..................................................... 4-7
Block protection ................................................. 4-32
Block title and block comment ........................... 4-13
C
Change control ........................................... 2-5, 4-25
Change Control ................................................... 3-8
Change log ........................................................ 4-26
Changing system software ................................ 4-18
Configuration control ........................................... 2-4
Configuration identification .................................. 2-4
Configuration management ........................ 2-4, 4-18
CPU storage ...................................................... 4-39
D
Diagnostic tools ................................................... 5-1
DOCPRO........................................................... 4-15
E
Electronic signature ............................................. 2-8
Engineering - Basic principles ............................. 4-4
EU GMP Guideline ....................................... 1-7, 1-8
F
FAT...................................................................... 1-6
FDA ..................................................................... 1-7
Firmware update................................................ 4-21
Functional specification ....................................... 1-5
G
GAMP........................................................... 1-7, 1-8
GMP requirements .............................................. 2-1
H
Hardware - Dimensioning .................................... 3-2
Hardware - Selection criteria ............................... 3-3
Hardware categorization...................................... 2-2
Hardware diagnostics .......................................... 5-1
I
Implementation.................................................... 1-5
integrated HMI system....................................... 4-11
L
Life cycle model................................................... 1-2
Line comment.................................................... 4-14
M
Module replacement .......................................... 4-21
N
NAMUR ........................................................ 1-7, 1-8
Network title and network comment .................. 4-13
O
Online / Offline comparison ................................. 3-8
Online/Offline comparison ................................. 4-25
P
Password...................................................... 2-7, 2-9
Programming - Procedure ................................... 4-4
Q
Qualification.................................................. 1-6, 6-1
Qualification application software ........................ 6-7
Qualification automation Hadware....................... 6-2
Qualification Field devices................................... 6-2
Qualification network structure ............................ 6-3
Qualification plan ................................................. 1-4
Qualification report .............................................. 1-6
Qualification standard software ........................... 6-4
Quality and project plan................................ 1-4, 1-9
Index-1
Index
System specification............................................ 3-1
R
Replacing / changing the hardware / firmware... 4-21
Retrieving archived data .................................... 2-13
Rewiring S7 programs ......................................... 5-7
Rules and Conventions ....................................... 4-8
S
SAT ..................................................................... 1-6
SIMATIC Logon ................................................... 3-8
SIMIT ................................................................... 5-6
Simulation tools ................................................... 5-5
Smart card ........................................................... 2-7
Software additional engineering packages ....... 3-5
Software - additional packages for
GMP compliance ............................................. 3-8
Software - Basic engineering............................... 3-5
Software - required / optional packages .............. 3-5
Software categorization .............................. 1-10, 2-2
Software Categorization ...................................... 4-2
Software creation................................................. 4-4
Software diagnostics ........................................... 5-2
Software installation ............................................ 4-3
Software interlocks/safety.................................. 4-10
Specification ........................................................ 1-4
Specification - design specification...................... 1-5
Symbolic name .................................................. 4-14
Index-2
T
Third-party component ...................................... 2-13
Time stamping................................................... 4-38
Time synchronization................................ 2-10, 4-36
Typicals ............................................................... 2-6
U
Update, Service Pack, Hotfix............................. 4-18
Upgrade (Migration) .......................................... 4-19
User ID ......................................................... 2-7, 2-9
User management ............................................... 2-7
User requirements specification .......................... 1-5
V
Validation plan..................................................... 1-4
Validation report .................................................. 1-6
Version control .................................................... 2-4
Version Cross Checker........................................ 3-9
Version Trail ........................................................ 3-8
Versioning ......................................... 3-8, 4-23, 4-33
Versioning application software........................ 4-22
Versioning - blocs .............................................. 4-23
Versioning - project ........................................... 4-23